Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2023-31341
PUBLISHED
More InfoOfficial Page
Assigner-AMD
Assigner Org ID-b58fc414-a1e4-4f92-9d70-1add41838648
View Known Exploited Vulnerability (KEV) details
Published At-13 Aug, 2024 | 16:57
Updated At-13 Aug, 2024 | 17:51
Rejected At-
▼CVE Numbering Authority (CNA)

Insufficient validation of the Input Output Control (IOCTL) input buffer in AMD μProf may allow an authenticated attacker to cause an out-of-bounds write, potentially causing a Windows® OS crash, resulting in denial of service.

Affected Products
Vendor
Advanced Micro Devices, Inc.AMD
Product
μProf Tool
Default Status
unaffected
Versions
Affected
  • From μProf Tool before 3.4.494 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-284CWE-284 Improper Access Control
Metrics
VersionBase scoreBase severityVector
3.17.3HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-9001
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Vendor
Advanced Micro Devices, Inc.amd
Product
amd_uprof
CPEs
  • cpe:2.3:a:amd:amd_uprof:*:*:*:*:*:*:*:*
Default Status
unaffected
Versions
Affected
  • From 0 before 4.2 (custom)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found